package com.example.ross.security;

import com.alibaba.fastjson.JSON;
import com.example.ross.common.Result;
import com.example.ross.utils.WebUtil;
import org.springframework.http.HttpStatus;
import org.springframework.security.access.AccessDeniedException;
import org.springframework.security.web.access.AccessDeniedHandler;
import org.springframework.stereotype.Component;

import javax.servlet.ServletException;
import javax.servlet.http.HttpServletRequest;
import javax.servlet.http.HttpServletResponse;
import java.io.IOException;

/**
 * @version 1.0.0
 * @className: AccessDeniedHandlerImpl
 * @description: 如果是授权过程中出现的异常会被封装成AccessDeniedException然后调用AccessDeniedHandler对象的方法去进行异常处理。
 * @author: zhangjunfa
 * @date: 2023/5/7 10:24
 */
@Component
public class RossAccessDeniedHandler implements AccessDeniedHandler {
    @Override
    public void handle(HttpServletRequest request, HttpServletResponse response, AccessDeniedException e) throws IOException, ServletException {
        String json = JSON.toJSONString(Result.error(HttpStatus.FORBIDDEN.value(), "权限不足"));
        WebUtil.renderString(response, json);
    }
}
